Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
642
Views
3
Helpful
2
Replies

Dynamic NAT and IPSEC

pavlosd
Level 2
Level 2

‎02-05-2005 09:11 AM - edited ‎02-21-2020 01:35 PM

Hi all,

We are currently implementing some IPSEC tunnels with a couple of customers. Our requirement is to use public IP addresses for the clients.

Some of our customers own an ADSL line with static Public IP address. Is it possible to setup a tunnel and they use the same public IP for both dynamic nating the inside clients and for ipsec termination (I remind you that we do not wish to use private IPs or customers internal network).

Regards.

Labels:
0 Helpful
2 Replies 2

aacole
Level 5
Level 5

‎02-06-2005 11:01 AM

Yes this is possible. The outside address can be used as a PAT source address, and also be used to act as the IPSec peer.

If the VPN is setup on either a PIX or a router then the traffic that is to go over the tunnel is excluded from the NAT process. The outside address would have to be a public address.

pavlosd
Level 2
Level 2
In response to aacole

‎02-13-2005 07:30 AM

What if I do not wish to exclude them from NAT? We want to have one public address, both for traffic and IPSEC Peering... is that possible?

0 Helpful
Customers Also Viewed These Support Documents